[shib_auth] can someone please provide some input to this problem?

[Kristof Bajnok]

On 2011. June 6. 20:46:55 Tommy Peterson wrote:
> OK. Can you give me a simple case of how people are ensuring authentication
> for certain sections of their Drupal sites? That might help me understand
> this better.

Unfortunately I don't know. Usually the content does not show up until the 
user is authenticated. Or if they try to access it by bookmarking it, they get 
an error message.

> I am an expert at PHP and I have already started looking at the module code
> itself to see where I can modify it. I have to have this done this
> week--actually last week. And given Apache/Shibboleth/shib_auth all seem
> to work I think we are pretty much there. I mean the Shibboleth log in
> page is thrown up. They are authenticated against the IDP. Theya re
> redirected to the page. They are just not logged in as the "sign-in" link
> still appears.

You should maintain a list of nodes for which automatic redirects are to be 
performed. There is a function that constructs the URL where the user should 
be redirected, so use that. You should understand the logic at the beginning 
of shib_auth_init, and do the redirect there. However, I'm not sure how to do 
a HTTP 302 redirect properly at Drupal init hook, ask the Drupal devs if you 
can't manage that.

Please be sympathetic that I can't really support this kind of development. If 
I could, I would do it myself.

Kristof